SplunkHEALTH CHECK

RiverSafe build your business resilience by keeping you a step ahead of

cyber threats. Working alongside your team and technology, we’ll ensure

your solution keeps pace with an evolving threat landscape, updates to

integrated products and changing teams. Our technology health checks

are the solution getting ROI from your investment as well as protecting

your business critical activity. Don’t wait until for a crisis to take action.

PREVENTION IS BETTER THAN CURE

BUSINESS SOLUTIONS SHEET

Phone: +44(0)203 633 2577

Email: sales@riversafe.co.uk

Web: www.riversafe.co.uk Suite 23, Beaufort Court, Admirals Way, London, E14 9XL

2 Splunk Health Check

OPTIMISING YOUR SPLUNK DEPLOYMENT

Buying Splunk is a great first step, but unless you continue to manage

and optimise it, then the chances are that you won’t keep up with

the pace at which threats, operational status KPI’s and technology

are evolving and your configuration will soon be out of date.

Ask yourself a couple of key questions: How confident are you now

that your Splunk deployment is functioning as it should? How

confident are you that you’re getting the best performance out of it?

We know from experience that when we are engaged to

Health Check one of our customers, this typically reveals

problems with their Splunk environment. These issues can

range from trivial matters that have a small performance

impact, through to fundamental blockers to business

effectiveness. Many of these problems could have easily been

avoided. Highlighting the importance of having someone

with the right technical knowhow visit and check on your

Splunk environment periodically, especially after any large

changes to the environment such as a version upgrade, or a

shift from standalone to clustered architecture.

Health checks allow you to once again have confidence

that your environment is functioning optimally and

they also give you the opportunity for someone with a

depth of knowledge and experience to highlight ideas

and approaches to using Splunk that you may not have

considered before, or to highlight new features you didn’t

even know you could use.

Our Splunk Professional Services Consultants work full-time with

global clients from a range of verticals. The projects vary across

deployment, implementation, maintenance and optimisation

for Splunk within client businesses. Our expert team consistently

exceed expectations and have been awarded the EMEA Splunk

Professional Services Award for three out of the last four years.

Our Professional Services consultants pride themselves

in providing expert advice in architecture, data quality,

ongoing maintenance, and support of Splunk Enterprise

and its premium apps. Our team consists of qualified

consultants who can audit and review your environment,

identifying potential risks, bottlenecks, and improvements

for your enterprise, cloud, or hybrid Splunk platform. All

providing tangible benefits to your business and security

environment.

COMPLEMENT YOUR TECHNOLOGY WITH A HEALTH CHECK

UNDERSTAND THE HEALTH OF YOUR SPLUNK ENVIRONMENT

THREE TIMES WINNER OF THE EMEA SPLUNK PROFESSIONAL SERVICES PARTNER AWARD

WHY RIVERSAFE?

Having purchased a technical solution to protect your business from an increasingly complex and constantly evolving threat environment, can you be sure you’re getting the most out of it and that it’s offering you the level of protection required? Increasing functionality and purchasing more integrations is a common attempt to ensure you’re covered, but it’s often a false economy.

Avoid going through a tick-box exercise when it’s your business security at stake. Invest in a healthcheck and be confident that not only are your critical operations covered, but you’re using

the technology you’ve already invested in to its full potential.

3

Our Health Check includes:

The Premium Health Check requires a week of professional services, whereas customers have the option to purchase the standard

assessment consisting of three days, excluding the application of potential changes or fixes.

The matrix below lists the services covered by our Premium and Standard Health Check:

DISCOVERY:

• Review of Splunk architecture and base configurations

• Performance assessment

• Index and search time configurations review

• Application distribution consistency

• Server configuration review

• Data quality review

• Pipeline auditing

• Security review

ARCHITECTURE REVIEW:

• Review Splunk architecture for best practices

• Consultation on platform expansion / sustainability

• Planning migration from on-prem to cloud

• Capacity planning / review

PREMIUM OR STANDARD?

WHAT’S ON OFFER

Premium Standard

Review of Splunk Architecture and Configurations

Data Sources assessment (‘golden’ props, Data Models, CIM mapping)

Splunk performance metrics (misconfigurations, slow searching behaviour, skipped searches)

Review apps and add-ons

Audit existing SPL in scheduled searches and provide recommendations

Capacity planning (index retention, volume management)

Security review (user/role management)

Fine tuning and assisting with application of best practices

Reporting findings, recommendations and customer walkthrough

FINE TUNING:

• Optimisation for data onboarding, application management,

and searching

• Application of Splunk best practices

• Splunk ES / ITSI / PCI / Exchange optimisation

REPORTING:

• Report on the findings along with recommendations and

guidance on best practices

RiverSafe is a leading cyber security intelligence partner,

supporting companies to put security at the heart of business

operations & yield actionable business insight. Proudly supporting

some of the world’s biggest companies -– including Vodafone,

Deutsche Banks and BP.

Our expertise in both cyber solutions and our longstanding

technology partnerships gives our customers an advantage over

evolving threats. We provide perspective on the status of security

infrastructure and remove existing silos to create a unified view of

activity and generate better operational outcomes.

For more information please visit:

www.riversafe.co.uk

If you would like to find out more about how RiverSafe can

help you please get in touch.

We offer a comprehensive capability to enable our customers

to accelerate time to value, derisk deployment and manage

business risks.

• Passionate about customer success

• Flexible, highly skilled resources

• Comprehensive suite of services

• Collaborative

• Proven track record

• Vendor endorsed

A B O U T R I V E R S A F E

G E T I N T O U C H

W H Y R I V E R S A F E

Phone: +44(0)203 633 2577

Email: sales@riversafe.co.uk

Web: www.riversafe.co.uk Suite 23, Beaufort Court, Admirals Way, London, E14 9XL